Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Patch For SAMBA.
Operating Systems HP-UX Patch For SAMBA. Post 302631295 by vbe on Friday 27th of April 2012 07:42:48 AM
Old 04-27-2012
Does not look very HP to me...
HP suggested yesterday to update CIFS/SAMBA:
Quote:
VULNERABILITY SUMMARY

Potential security vulnerabilities have been identified with HP-UX CIFS-Server (Samba). The vulnerabilities could be exploited remotely to create a cross site request forgery (CSRF) or create a Denial of Service (DoS).

References: CVE-2011-2522
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.

HP-UX B.11.11, B.11.23, B.11.31 running HP-UX CIFS-Server (Samba) A.02.04.04 or earlier
HP-UX B.11.23, B.11.31 running HP-UX CIFS-Server (Samba) A.03.01.03 or earlier
Code:
RESOLUTION
HP has provided the following software updates to resolve the vulnerabilities.
The updates are available for download from http://software.hp.com

HP-UX CIFS-Server (Samba)
	
HP-UX Release
	
Apache Depot name
A.02.04.05
	
11i v1
	
HP-UX_11.11_B8725AA_A.02.04.05_HP-UX_B.11.11_32_64.depot
11i v2
	
HP-UX_11.23_B8725AA_A.02.04.05_HP-UX_B.11.23_IA_PA.depot
11i v3
	
HP-UX_11.31_CIFS-SERVER_A.02.04.05_HP-UX_B.11.31_IA_PA.depot
A.03.01.04
	
11i v2
	
HP-UX_11.23_B8725AA_A.03.01.04_HP-UX_B.11.23_IA_PA.depot
11i v3
	
HP-UX_11.31_CIFS-SERVER_A.03.01.04_HP-UX_B.11.31_IA_PA.depot


MANUAL ACTIONS: Yes - Update
Install HP-UX CIFS-Server (Samba) A.03.01.04 or subsequent.
Install HP-UX CIFS-Server (Samba) A.02.04.05 or subsequent.

source:
http://h20000.www2.hp.com/bizsupport...critical_012_0
 

8 More Discussions You Might Find Interesting

1. HP-UX

OS Patch

Hello, I have to apply the patch PHSS_24302 on HPUX B.11.11 os version. When i look at the /var/adm/sw/swagentd.log it mentions that "this is not a valid depot". I downloaded the patch from HP web site. Please get back to me at the earliest as I'm dead in the water. Thanks, Balaji K (3 Replies)
Discussion started by: bkrish
3 Replies

2. Shell Programming and Scripting

patch

Dear Guys , I use Linux Red Hat 9 .. i installed a patch for a web mail i use , and i think it make a damage for my web mail i cannot see it anymore . i get so many error messages . what i want to ask is there any command on linux i can use to remove the patch !!! i want to remove the... (1 Reply)
Discussion started by: tamemi
1 Replies

3. UNIX for Dummies Questions & Answers

patch

Dear All , I have Sun Solaries 7 sparc server ... am runing perl , CGI , MD5 ... etc for new web mail am setting up . now i have to install the patch ( xyz.pl.patch ) against a perl file for ex. xxx.pl what exact command i have to use ,,, also i do not want to make damage for my system... (6 Replies)
Discussion started by: tamemi
6 Replies

4. IP Networking

Patch-o-matic (patch for iptable) for linux2.4.08 & iptable1.2.7a

Hello friends I'm running Redhat 9.0 with linux kernel 2.4.20-8 & have iptables version 1.2.7a & encountering a problem that I narrate down. I need to apply patch to my iptable and netfilter for connection tracking and load balancing that are available in patch-o-matic distribution by netfilter.... (0 Replies)
Discussion started by: Rakesh Ranjan
0 Replies

5. Solaris

Patch help?

Hello... I'm looking for latest patch for automount and what it does on Solaris8, Thanks! :confused: (2 Replies)
Discussion started by: catwomen
2 Replies

6. Solaris

samba issue: one samba share without password prompting and the others with.

Hi All, I've been trying to configure samba on Solaris 10 to allow me to have one share that is open and writable to all users and have the rest of my shares password protected by a generic account. If I set my security to user, my secured shares work just fine and prompt accordingly, but when... (0 Replies)
Discussion started by: ideal2545
0 Replies

7. Cybersecurity

Need patch policy help

I'm working on developing a patch policy for a mid-size and quickly growing company. Patches have been at the bottom of the totem pole for years. I possess the ability and care enough to straighten it out. However I'd like some others input on the best way to handle the patch policy. From when... (1 Reply)
Discussion started by: jlouki01
1 Replies

8. Debian

Applying patch for Samba version 4.1.17

The version of Samba in our billing server is 4.1.17-Debian. I have been reminded by our management to implement the patch for Samba on this server. However, I am not sure how to implement the patch. I have browsed some websites for the correct patch to implement for Samba 4.1.17, and the patch... (11 Replies)
Discussion started by: anaigini45
11 Replies

LEARN ABOUT CENTOS

vfs_catia

VFS_CATIA(8)						    System Administration tools 					      VFS_CATIA(8)

NAME

       vfs_catia - translate illegal characters in Catia filenames

SYNOPSIS

       vfs objects = catia

DESCRIPTION

       This VFS module is part of the samba(7) suite.

       The Catia CAD package commonly creates filenames that use characters that are illegal in CIFS filenames. The vfs_catia VFS module
       implements a character mapping so that these files can be shared with CIFS clients.

       This module is stackable.

       The parameter "catia:mappings" specifies the mapping on a per-character basis, see below.

OPTIONS

       catia:mappings = SERVER_HEX_CHAR:CLIENT_HEX_CHAR
	   SERVER_HEX_CHAR specifies a 0x prefixed hexedecimal character code that, when included in a Samba server-side filename, will be mapped
	   to CLIENT_HEX_CHAR for the CIFS client.

	   The same mapping occurs in the opposite direction. Multiple character mappings are separated by a comma.

EXAMPLES

       Map server-side quotation-marks (") to client-side diaeresis (") on filenames in the [CAD] share:

		   [CAD]
		path = /data/cad
		vfs objects = catia
		catia:mappings = 0x22:0xa8

       Perform comprehensive mapping of common Catia filename characters:

		   [CAD]
		path = /data/cad
		vfs objects = catia
		catia:mappings = 0x22:0xa8,0x2a:0xa4,0x2f:0xf8,0x3a:0xf7,0x3c:0xab,0x3e:0xbb,0x3f:0xbf,0x5c:0xff,0x7c:0xa6

       Server-side filename to be translated (Note that the path delimiter "/" is not used here):

       aa:a*a?a"a<a>a|a

       Resulting filename, as seen by the client:

       aya-:-axaca"a<<a>>a|a

CAVEATS

       Character mapping must work in BOTH directions (server -> client and client -> server) to get unique and existing file names!

       A NOT working example:

		   [CAD]
		path = /data/cad
		vfs objects = catia
		catia:mappings = 0x3a:0x5f

       Here the colon ":" is mapped to the underscore "_".

       Assuming a server-side filename "a:should_work", which is translated to "a_should_work" for the client.

       BUT the reverse mapping from client "a_should_work" to server will result in "a:should:work" - something like "file not found" will be
       returned.

VERSION

       This man page is correct for Samba versions from 3.5.0 to 4.0.6.

AUTHOR

       The original Samba software and related utilities were created by Andrew Tridgell. Samba is now developed by the Samba Team as an Open
       Source project similar to the way the Linux kernel is developed.

       New version written by Guenter Kukkukk kukks@samba.org

Samba 4.0							    06/17/2014							      VFS_CATIA(8)
All times are GMT -4. The time now is 10:22 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy